09/18
09/19
09/20
6 Posts

CVE-2025-55241 - Security Update Guide - Microsoft - Azure Entra Elevation of Privilege Vulnerability

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55241
CVE-2025-55241 - Security Update Guide - Microsoft - Azure Entra Elevation of Privilege Vulnerability
5 Posts

Silly EDR Bypasses and Where To Find Them

https://malwaretech.com/2023/12/silly-edr-bypasses-and-where-to-find-them.html
Silly EDR Bypasses and Where To Find Them
4 Posts

Under the Hood of AFD.sys Part 2: TCP handshake | Mateusz Lewczak

https://leftarcode.com/posts/afd-reverse-engineering-part2/
Under the Hood of AFD.sys Part 2: TCP handshake | Mateusz Lewczak
3 Posts

Gamaredon X Turla collab

https://www.welivesecurity.com/en/eset-research/gamaredon-x-turla-collab/
Gamaredon X Turla collab
3 Posts

CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

https://thehackernews.com/2025/09/cisa-warns-of-two-malware-strains.html
CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428
3 Posts

XSS-Leak: Leaking Cross-Origin Redirects | Salvatore Abello's Blog

https://blog.babelo.xyz/posts/cross-site-subdomain-leak
XSS-Leak: Leaking Cross-Origin Redirects | Salvatore Abello's Blog
3 Posts

FBI warns of cybercriminals using fake FBI crime reporting portals

https://www.bleepingcomputer.com/news/security/fbi-warns-of-fake-fbi-crime-complaint-portals-used-for-cybercrime/
FBI warns of cybercriminals using fake FBI crime reporting portals
3 Posts

Steam will stop running on Windows 32-bit in January 2026

https://www.bleepingcomputer.com/news/software/steam-will-stop-running-on-windows-32-bit-in-january-2026/
Steam will stop running on Windows 32-bit in January 2026
3 Posts

More Fun With WMI - SpecterOps

https://specterops.io/blog/2025/09/18/more-fun-with-wmi/
More Fun With WMI - SpecterOps
3 Posts

Fortra warns of max severity flaw in GoAnywhere MFT’s License Servlet

https://www.bleepingcomputer.com/news/security/fortra-warns-of-max-severity-flaw-in-goanywhere-mfts-license-servlet/
Fortra warns of max severity flaw in GoAnywhere MFT’s License Servlet
3 Posts

CISA exposes malware kits deployed in Ivanti EPMM attacks

https://www.bleepingcomputer.com/news/security/cisa-exposes-malware-kits-deployed-in-ivanti-epmm-attacks/
CISA exposes malware kits deployed in Ivanti EPMM attacks
3 Posts

17,500 Phishing Domains Target 316 Brands Across 74 Countries in Global PhaaS Surge

https://thehackernews.com/2025/09/17500-phishing-domains-target-316.html
17,500 Phishing Domains Target 316 Brands Across 74 Countries in Global PhaaS Surge
3 Posts

UNC1549 Hacks 34 Devices in 11 Telecom Firms via LinkedIn Job Lures and MINIBIKE Malware

https://thehackernews.com/2025/09/unc1549-hacks-34-devices-in-11-telecom.html
UNC1549 Hacks 34 Devices in 11 Telecom Firms via LinkedIn Job Lures and MINIBIKE Malware
3 Posts

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions - SecurityWeek

https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions - SecurityWeek
3 Posts

OpenAI's $4 GPT Go plan may expand to more regions

https://www.bleepingcomputer.com/news/artificial-intelligence/openais-4-gpt-go-plan-may-expand-to-more-regions/
OpenAI's $4 GPT Go plan may expand to more regions
3 Posts

Under the Hood of AFD.sys Part 4: Receiving TCP packets | Mateusz Lewczak

https://leftarcode.com/posts/afd-reverse-engineering-part4/
Under the Hood of AFD.sys Part 4: Receiving TCP packets | Mateusz Lewczak